close

Joe Grandja

Joe Grandja

Spring Security Senior Engineer

Toronto, Canada

Joe has been in the Software Industry for over 20 years. He has successfully designed, built and delivered enterprise grade software in the financial services and health sector. He has been using Spring for over 10 years and is very excited to have joined the Spring Security engineering team, in early 2016. Outside of his passion for crafty software, Joe continues to travel the world with his family, snowboarding the most challenging mountains, exploring nature on foot and doing his best to enjoy what life brings.
Blog Posts by Joe Grandja

Spring Authorization Server 0.2.3 available now

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.2.3.

You can download it from Maven Central by using the module coordinates:

compile 'org.springframework.security:spring-security-oauth2-authorization-server:0.2.3'

See the release notes for complete details.

To get started using Spring Authorization Server, see the sample to become familiar with setup and configuration.

We would love to gather your feedback as we strive to improve and build upon this release.

Read more...

Spring Authorization Server 0.2.2 available now

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.2.2.

You can download it from Maven Central by using the module coordinates:

compile 'org.springframework.security:spring-security-oauth2-authorization-server:0.2.2'

See the release notes for complete details.

To get started using Spring Authorization Server, see the sample to become familiar with setup and configuration.

We would love to gather your feedback as we strive to improve and build upon this release.

Read more...

Spring Authorization Server 0.2.1 available now

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.2.1.

You can download it from Maven Central by using the module coordinates:

compile 'org.springframework.security:spring-security-oauth2-authorization-server:0.2.1'

See the release notes for complete details.

To get started using Spring Authorization Server, see the sample to become familiar with setup and configuration.

We would love to gather your feedback as we strive to improve and build upon this release.

Read more...

Update on EOL for Spring Security OAuth

In May 2020, we announced that the Spring Security OAuth (legacy) project will reach end-of-life in May 2022. The same end-of-life timeline applies to the Spring Boot 2 auto-configuration project.

We are now 6 months away from the EOL date, and the currently supported version branch is 2.5.x, which is limited to security fixes only.

We recently announced the release of Spring Authorization Server 0.2.0, which is the first officially supported production-ready version backed by our new support policy.

Read more...

Spring Authorization Server goes to production !

On behalf of the team and everyone who has contributed, it is my great pleasure to announce the general availability of Spring Authorization Server 0.2.0.

This release is the first officially supported production-ready version backed by our new support policy.

You can download it from Maven Central by using the module coordinates:

compile 'org.springframework.security:spring-security-oauth2-authorization-server:0.2.0'

See the release notes for complete details.

For additional details on this project, see the latest and initial announcement and the project page.

Read more...

Spring Authorization Server officially moves to spring-projects

We are very excited to announce that Spring Authorization Server has officially moved out of experimental status and into the Spring project’s portfolio!

This move coincides with this week’s 0.2.0 release, which is the first officially supported production-ready version backed by our new support policy.

Since announcing the Spring Authorization Server in April 2020, the implemented features provide support for a large portion of the OAuth 2.1 Authorization Framework and modest support for OpenID Connect 1.0. However, as we move onto the next phase of development, our focus changes to advancing the support for OpenID Connect 1.0.

Read more...

Spring Authorization Server 0.1.2 available now

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.1.2.

You can download it from Maven Central by using the module coordinates:

compile 'org.springframework.security.experimental:spring-security-oauth2-authorization-server:0.1.2'

For additional details on this new project, see the initial announcement and project page.

The main features delivered in this release are:

  • Ability to configure a custom Authorization Consent page (gh-283)

  • JDBC implementation of RegisteredClientRepository (gh-265), OAuth2AuthorizationService (gh-245) and OAuth2AuthorizationConsentService (gh-313)

  • Ability to configure the Authorization Endpoint (gh-342)

  • Ability to configure the Token Endpoint (gh-319)

Read more...